Privacy Policy

We provide our clients with full respect for their privacy and protection of their personal data.
The Privacy Policy defines the principles of collecting, processing and using personal data obtained from Customers via the online store operating at gashio.pl (hereinafter referred to as the "Online Store").
Personal data provided by Customers are processed in a manner consistent with the scope of authorisation granted by Customers and legal requirements, in particular in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as "GDPR").
Data administration
The administrator of data collected via the Online Store is GASHIO with its registered office in Mirzec (27-220 Grabówka, ul. Langiewicza 38), based on the entry in CEIDG:
Name GASHIO
NIP 6642136359
Location Langiewicza 38, 27-220 Mirzec
Contact details: biuro@gashio.pl or application form in the contact tab.
Legal form
JDG GASHIO
Address Langiewicza 38, 27-220 Mirzec - hereinafter referred to as the "Administrator" and being at the same time the Service Provider of the Online Store and the Seller.
The Administrator takes special care to protect the interests of data subjects, and in particular ensures that the data collected by him is processed in accordance with the law; collected for specified, lawful purposes and not subject to further processing incompatible with these purposes; substantively correct and adequate in relation to the purposes for which it is processed and stored in a form which allows identification of data subjects for no longer than is necessary to achieve the purpose of processing.
The purpose of data collection
Personal data collected by the Administrator will be processed for the purpose of setting up and maintaining the Customer's account, fulfilling orders placed in the gashio.pl online store pursuant to Art. 6 sec. 1 letter b of the GDPR and for direct communication pursuant to Art. 6 sec. 1 letter f of the GDPR, which also constitutes the legitimate interest of the company.
In the event of expressing separate consent, personal data will also be processed for the purpose of receiving commercial information sent by the Administrator to the provided e-mail address, on the basis of art. 6 sec. 1 letter a of the general regulation on the protection of personal data in connection with art. 10 sec. 1 of the Act on the provision of services by electronic means. This applies in particular to the newsletter sent to the Customer, if he/she confirms the explicitly indicated link containing acceptance for receiving the newsletter on current promotions, discounts and news in the Online Store. These materials concern only the offer of the Online Store.
The Administrator may process the following personal data of Customers: name and surname; e-mail address; contact telephone number; delivery address (street, house number, apartment number, postal code, city, country), address of residence/business/registered office (if different from the delivery address). In the case of Customers who are not consumers, the Administrator may additionally process the company name and the Tax Identification Number (NIP) of the Customer.
Providing the personal data indicated above may be necessary to conclude and execute the Sales Agreement or the agreement for the provision of Electronic Services in the online store operating at gashio.pl
Data storage period
The collected personal data will be stored for the period of remaining a registered user of the online store operating at gashio.pl and after resigning from being a user of the online store - for the period necessary to exercise all rights of the seller resulting from the conclusion of the sales agreement, including pursuing claims.
In the case of using the online store without registration, personal data will be stored for the period necessary to exercise all rights of the seller resulting from the conclusion of the sales contract, including the pursuit of claims.
Data recipients
In the case of a Customer who uses GASHIO's delivery method by post or courier, the Administrator makes the collected personal data of the Customer available to the selected carrier or intermediary carrying out the shipments on behalf of the Administrator.
In the case of a Client who uses electronic payment or payment card payment in GASHIO, the Administrator makes the collected personal data of the Client available to the selected entity handling the above payments in GASHIO.
GASHIO may also transfer data to suppliers to whom it commissions services related to the processing of personal data, e.g. IT service providers. Such entities process data on the basis of an agreement with GASHIO and only in accordance with its instructions.
In the event of an inspection, in accordance with the Personal Data Protection Act, the Client's data may be made available to the inspectors.
 
Transfer of data to third countries
The Administrator does not transfer the collected data outside the European Economic Area, unless the delivery of Goods is to be made outside this area at the express request of the Customer.
The transfer of personal data outside the European Economic Area takes place when one of the following conditions is met:
  1. the processing is carried out by an entity in relation to which a decision has been issued stating the appropriate level of protection
  2. the processing is carried out by an entity that participates in the Privacy Shield Program,
  • processing is carried out by the entity within the framework of binding corporate rules.
 
Data security
Personal data is stored on secured servers. Selected employees have access to the data. The place and method of storing the data is to ensure its complete security.
Customers' rights related to the processing of personal data and automated decision-making
Customers have the following rights related to the processing of personal data:
  1. the right to withdraw consent to data processing,
  2. the right to access personal data and receive a copy thereof,
  3. the right to request rectification (correction) of personal data,
  4. the right to request the deletion of personal data,
  5. the right to request the restriction of the processing of personal data,
  6. the right to object to the processing of data due to a special situation that justifies the cessation of the processing covered by the objection,
  7. the right to transfer personal data, i.e. the right to receive personal data in a structured, commonly used computer format that is machine-readable. The right to transfer personal data only applies to data that is processed on the basis of a contract or on the basis of consent.
To exercise the above rights, the Customer should contact the Administrator - contact details above. To be sure that the contact is with the Administrator and the person authorized to submit the application, the Administrator may ask for additional information allowing for effective authentication and identification.
 
The right to withdraw consent
To the extent that data is processed based on consent, this consent may be withdrawn at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. Consent may be withdrawn by sending a statement of withdrawal of consent to the correspondence address or to our e-mail address.
The right to lodge a complaint with the authority
The Customer also has the right to lodge a complaint with the supervisory authority responsible for the protection of personal data, i.e. the President of the Office for Personal Data Protection.
 
Anonymous data and push notifications
When using the website at gashio.pl, anonymous information is automatically collected on the server, e.g. IP address, domain name, browser type, device type, operating system type, etc. The information contained on the server is used in particular for the following purposes: technical and for purposes related to the administration of the online store, ensuring the security of the online store, implementing the provisions of the Regulations, protecting the law. In addition, this information is used to collect statistical or marketing information.
In addition, it reserves the right to send Push notifications containing personalized commercial information, discount coupons and information about the change of order status. The customer can disable notifications in the application at any time.
 
Cookie Policy
The Store also uses so-called cookies. These files are saved on the Client's computer by the server and provide statistical data on the Client's activity in order to match the offer to their individual needs and tastes. The Client may at any time disable the option of accepting cookies in their web browser, although they must be aware that in some cases, deactivating these files may impede the use of the Online Store's offer.
Other information
If the Store's website contains links to other websites not administered by the Store, it cannot be held responsible for the content of those websites or the level of privacy protection implemented by the administrators of those websites. When deciding to go to such websites, the Customer does so at their own risk. The Store also encourages the Customer to familiarize themselves with the privacy policy implemented by those websites before the Customer provides them with their personal data.
The Store also collects anonymous statistical data regarding visited pages. This data is used solely for statistical analysis of traffic on the Store's pages. The principles regarding the Google Analytics privacy policy can be found at: www.google.com.
Please submit any questions, requests and suggestions relating to the protection of privacy, in particular personal data, via the submission form in the contact tab.
Any changes to the Privacy Policy will be published on this page, and the Store will provide more prominent notice of significant changes (including, for some services, sending an e-mail notification informing you of changes to the Privacy Policy).
Information from the personal data controller prepared pursuant to Article 13 paragraphs 1 and 2 of the General Data Protection Regulation (GDPR)
In connection with the entry into force and the necessity to apply Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as the "Regulation"), the owner of the Internet domain presents the following information regarding the principles of processing your personal data.
  1. The website processes your personal data for the following purposes:
    1. to provide the services offered on the website,
    2. transfer of your personal data to ING Bank Śląski SA ("Bank") in connection with
      • the provision by the Bank to the Online Store of the service of providing infrastructure for handling payments via the Internet (legal basis: Article 6 paragraph 1 letter f) of the Regulation).
      • the processing and settlement by the Bank of payments made by customers of the Online Store via the Internet using payment instruments (legal basis: Article 6 paragraph 1 letter f) of the Regulation).
      • in order for the Bank to verify the proper performance of agreements concluded with the Online Store, in particular to ensure the protection of payers’ interests in connection with the complaints they submit (legal basis: Article 6 paragraph 1 letter f) of the Regulation).
    3. In connection with the processing of personal data for the purposes specified in paragraph 2, your personal data may be made available by the Online Store to other recipients or categories of recipients of personal data, which may be:
      1. ING Bank Śląski S.A.
      2. Transfers24
    4. If your personal data are transferred to the Bank in connection with the handling and settlement of payments made by you to the Online Store via the Internet using payment instruments, the provision of data is required in order to execute the payment and provide confirmation of its execution by the Bank to the Online Store.
    5. In the event that your personal data is transferred to the Bank for the purpose of verification by the Bank of the proper performance of agreements concluded with the Online Store, in particular to ensure the protection of payers' interests in connection with the complaints they submit, the provision of such data is required in order to enable the performance of the agreement concluded between the Online Store and the Bank.
Cookie Policy
This Policy defines the rules for storing and accessing information on the User's devices using Cookies, which are used to provide services provided electronically requested by the User, GASHIO
  1. Definitions
  1. Administrator - means GASHIO in Mirzec (27-220), ul. Langiewicza 38, NIP: 6642136359, which provides services electronically and stores and accesses information on the User's devices.
  2. Cookies - means IT data, in particular small text files, saved and stored on devices through which the User uses the websites of the Service.
  3. Own Cookies - means Cookies placed by the Administrator, related to the provision of electronic services by the Administrator via the Website.
  4. External Cookies - means Cookies placed by the Administrator's partners via the Service's website.
  5. Website - means the website or application under which the Administrator runs the website operating in the domain(s) gashio.pl.
  6. Device - means an electronic device through which the User gains access to the Service.
  7. User - means an entity for which services may be provided electronically in accordance with the Regulations and legal provisions or with whom an Agreement for the provision of services electronically may be concluded.
  1. Types of Cookies used
  1. Cookies used by the Administrator are safe for the User's Device. In particular, it is not possible for viruses or other unwanted software or malware to get into the User's Devices this way. These files allow you to identify the software used by the User and customize the Service individually for each User. Cookies usually contain the name of the domain they come from, the time they are stored on the Device and the assigned value.
  2. The Administrator uses two types of cookies:
  1. Session Cookies: are stored on the User's Device and remain there until the end of the browser session. The saved information is then permanently deleted from the Device's memory. The session cookie mechanism does not allow for the collection of any personal data or any confidential information from the User's Device.
  2. Persistent Cookies: are stored on the User's Device and remain there until they are deleted. Ending a given browser session or turning off the Device does not delete them from the User's Device. The persistent cookie mechanism does not allow for the collection of any personal data or any confidential information from the User's Device.
  1. The User has the option to limit or disable access of cookies to their Device. If this option is used, the use of the Service will be possible, except for functions that by their nature require cookies.
III. Purposes for which Cookies are used
  1. The Administrator uses Own Cookies for the following purposes:
    1. Service configuration
      • i) adapting the content of the Service’s web pages to the User’s preferences and optimizing the use of the Service’s web pages;
      • ii) recognizing the Service User’s device and its location and appropriately displaying the website, tailored to their individual needs;
      • iii) remembering the settings selected by the User and personalising the User interface, e.g. in terms of the selected language or region from which the User comes;
      • iv) remembering the history of pages visited on the website in order to recommend content;
      • v) font size, website appearance, etc.
    2. Authenticating the user on the website and ensuring the user's session on the website
      • i) maintaining the Service User's session (after logging in), thanks to which the User does not have to re-enter their login and password on each subpage of the Service;
      • ii) correct configuration of selected functions of the Service, enabling in particular verification of the authenticity of the browser session;
      • iii) optimisation and increase of the efficiency of services provided by the Administrator.
    3. Implementation of processes necessary for the full functionality of websites
      • i) adapting the content of the Service's web pages to the User's preferences and optimizing the use of the Service's web pages. In particular, these files allow for the recognition of the basic parameters of the User's Device and the appropriate display of the web page, tailored to their individual needs;
      • ii) correct operation of the affiliate program, enabling in particular verification of the sources of Users’ redirection to the Service’s websites.
    4. Remembering the user's location
      • i) correct configuration of selected functions of the Service, enabling in particular the adjustment of the information provided to the User, taking into account his/her location.
    5. Analysis, research and audience audit
      • i) creating anonymous statistics that help understand how Service Users use the Service's web pages, which allows for the improvement of their structure and content.
    6. Provision of advertising services
      • i) customization of advertisements for third-party services and products presented via the Website;
    7. Ensuring the security and reliability of the service
  2. The service administrator uses External Cookies for the following purposes:
    1. Presenting multimedia content on the Service’s websites.
    2. Collecting general and anonymous statistical data via analytical tools:
      • i) Google Analytics [cookie administrator: Google Inc. based in the USA]
    3. Presenting advertisements tailored to the User's preferences using online advertising tools:
      • i) Google AdSense [cookie administrator: Google Inc. based in the USA]
    4. Logging in to the site using an account on another site:
      • i) Facebook Connect [cookie administrator: Facebook Inc. based in the USA or Facebook Ireland based in Ireland]
      • ii) Google [cookie administrator: Google Inc. based in the USA]
      • iV) Paypal [cookie administrator: PayPal (Europe) S.à rl & Cie, SCA based in Luxembourg or PayPal Inc. based in the USA]
    5. Using interactive functions to popularize the website via social networking sites:
      • i) twitter.com [cookie administrator: Twitter Inc. based in the USA]
      • ii) plus.google.com [cookie administrator: Google Inc. based in the USA]
      • iii) Facebook.com [cookie administrator: Facebook Inc. based in the USA or Facebook Ireland based in Ireland]
      • iv) nk.pl [cookie administrator: Nasza Klasa Sp. z o. o. with its registered office in Wrocław]
      • vii) Pinterest [cookie administrator: Pinterest, Inc. based in the USA]
    6. Presenting opinions on the Service's websites that are downloaded from an external website:
      • i) opineo.pl [cookie administrator: Opineo Sp. z o. o. with its registered office in Wrocław]
      • ii) ceneo.pl [cookie administrator: Grupa Allegro sp. z o. o. with its registered office in Poznań]
    7. Use of functions to facilitate communication via the Service's website, which are downloaded from an external website:
  1. Possibilities of defining the conditions of storage or access via Cookies
  2. The User may independently and at any time change the settings for Cookies, specifying the conditions for their storage and access by Cookies to the User's Device. The User may change the settings referred to in the previous sentence using the web browser settings or by configuring the service. These settings may be changed in particular in such a way as to block the automatic handling of Cookies in the web browser settings or to inform about each time Cookies are placed on the User's device. Detailed information on the possibilities and methods of handling Cookies is available in the software (web browser) settings.
  3. The User may delete Cookies at any time using the functions available in the web browser he or she is using.
  4. Limiting the use of Cookies may affect some of the functionalities available on the Service's website.